Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3b/bf5a64-8aaf-44a8-bace-36850df4e997/1/_ORf1v09kyaEwMW8J_T6YVoQkOA.mft
File: _ORf1v09kyaEwMW8J_T6YVoQkOA.mft (raw, json)
Hash identifier: 3+QAmdyla3DM9fpDrIcoPs45HLqrfNuzaGcW3xpTbbw=
Subject key identifier: 69:70:68:9A:E9:28:05:FB:6E:C3:5D:E4:06:C5:7D:4E:C0:D7:60:19
Authority key identifier: FC:E4:5F:D6:FD:3D:93:26:84:C0:C5:BC:27:F4:FA:61:5A:10:90:E0
Certificate issuer: /CN=fce45fd6fd3d932684c0c5bc27f4fa615a1090e0
Certificate serial: 0199301102213FC0ECF2170EC5C802FB5C04
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_ORf1v09kyaEwMW8J_T6YVoQkOA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3b/bf5a64-8aaf-44a8-bace-36850df4e997/1/_ORf1v09kyaEwMW8J_T6YVoQkOA.mft
Manifest number: 0CFC
Signing time: Tue 09 Sep 2025 20:00:44 +0000
Manifest this update: Tue 09 Sep 2025 20:00:44 +0000
Manifest next update: Wed 10 Sep 2025 20:00:44 +0000
Files and hashes: 1: 0q3J-c3dMCcb0fEi4kT4_OFKaDo.roa (hash: GFF2i9DOD9iNc83o9PQkrJQokdzx6TTVi4lrSIyhIgE=)
2: _ORf1v09kyaEwMW8J_T6YVoQkOA.crl (hash: 7Yf3ORdLBOQb0lS91X3iSjU0w5x6Zn8m095yi8xD+9I=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3b/bf5a64-8aaf-44a8-bace-36850df4e997/1/_ORf1v09kyaEwMW8J_T6YVoQkOA.crl
rsync://rpki.ripe.net/repository/DEFAULT/3b/bf5a64-8aaf-44a8-bace-36850df4e997/1/_ORf1v09kyaEwMW8J_T6YVoQkOA.mft
rsync://rpki.ripe.net/repository/DEFAULT/_ORf1v09kyaEwMW8J_T6YVoQkOA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 10 Sep 2025 20:00:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:30:11:02:21:3f:c0:ec:f2:17:0e:c5:c8:02:fb:5c:04
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fce45fd6fd3d932684c0c5bc27f4fa615a1090e0
Validity
Not Before: Sep 9 20:00:44 2025 GMT
Not After : Sep 10 20:00:44 2025 GMT
Subject: CN=6970689ae92805fb6ec35de406c57d4ec0d76019
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f8:ca:5f:38:36:ea:32:7f:2e:b4:3c:d0:28:66:
a3:24:3a:93:c6:94:fa:e7:24:52:ea:53:c4:45:bc:
44:c3:67:ff:9c:0d:b0:b7:40:46:18:07:92:cb:ae:
dd:46:be:c1:81:be:2a:36:2e:14:01:67:bf:25:fc:
27:af:bf:6b:95:f3:d2:26:c2:8c:2b:28:57:1e:82:
33:43:dc:64:8a:37:16:f6:27:01:99:2a:3a:a0:c5:
55:3a:54:f6:c0:84:cc:4e:32:e4:29:7c:41:5f:e2:
1a:5d:66:b5:80:82:b3:91:68:20:42:8c:ea:8f:83:
98:2f:15:c7:e3:8e:e5:0f:c4:fe:7e:f3:38:e9:6e:
ea:27:d6:49:07:f2:6a:a9:e6:aa:a3:b8:62:69:9c:
42:7f:24:25:f7:7c:08:26:24:2e:f1:1d:92:80:af:
6a:5a:5d:d3:23:ac:87:92:bf:57:7f:c6:96:28:7e:
d1:44:d8:e3:24:ae:50:16:b7:6b:cb:af:17:47:3e:
41:ae:fd:cb:76:56:02:e4:b9:e4:fc:d6:31:51:dd:
0a:20:fd:d4:dc:36:1f:f0:05:8b:95:b4:36:ef:3c:
df:78:cc:59:65:e2:81:27:6d:27:c5:40:58:8a:6b:
9d:24:f5:67:a1:90:69:98:63:98:92:2f:f7:f4:f1:
b0:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:70:68:9A:E9:28:05:FB:6E:C3:5D:E4:06:C5:7D:4E:C0:D7:60:19
X509v3 Authority Key Identifier:
keyid:FC:E4:5F:D6:FD:3D:93:26:84:C0:C5:BC:27:F4:FA:61:5A:10:90:E0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_ORf1v09kyaEwMW8J_T6YVoQkOA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/bf5a64-8aaf-44a8-bace-36850df4e997/1/_ORf1v09kyaEwMW8J_T6YVoQkOA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/bf5a64-8aaf-44a8-bace-36850df4e997/1/_ORf1v09kyaEwMW8J_T6YVoQkOA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7d:1b:1c:7a:fa:8e:cc:02:6e:07:ec:be:16:5f:21:ac:93:21:
c6:6e:3b:c8:c2:dc:9e:4e:e3:b2:06:bb:be:cc:d6:81:71:7d:
5a:c8:67:b6:f6:5b:ee:a5:8c:82:f9:d7:16:c7:16:a5:ec:ad:
45:03:25:7f:08:a0:0e:7b:6d:87:e6:6e:44:51:b0:22:f1:43:
e4:95:77:11:06:39:c5:2d:06:2c:b3:44:8f:10:d2:ad:d1:6c:
16:e8:4d:47:df:1b:24:86:d5:ff:ea:56:27:08:ca:12:4c:7e:
eb:10:ba:d4:8c:97:a0:54:35:8d:a4:f9:45:c6:ec:36:35:2c:
f3:32:18:62:1f:56:6e:23:d8:91:66:95:f8:9e:ef:52:56:3e:
aa:00:00:90:69:8b:23:6c:cc:aa:67:06:39:8b:d2:7c:85:f4:
c4:d3:43:03:ae:5b:bd:2e:55:96:fd:70:1c:54:05:52:29:e3:
db:a3:3a:3d:f2:e9:29:d3:e0:fb:d2:42:c9:3e:de:4f:98:aa:
8e:9a:ba:ae:3d:fa:7f:b2:9a:41:f0:e6:bf:35:0f:00:69:91:
14:21:52:9a:d5:9a:d5:94:ff:59:43:e2:d1:ea:c7:6c:62:7c:
dc:d6:7c:94:c0:36:e2:20:68:1c:e6:e5:e4:9a:23:44:4a:b9:
fe:5d:06:4d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Sep 10 03:58:11 2025 by rpki-client